Cyber Security News Roundup – 25th September 2023

Cyber crime continued to pose a threat to global organisations last week, with successful, high profile breaches in different industries and sectors. To learn more about each story, click the headings.

War crimes tribunal ICC says it has been hacked

19/9

The International Criminal Court, one of the world's most high-profile international institutions and one that handles highly sensitive information about war crimes, revealed that its systems had been hacked on Tuesday. A response, which is still ongoing, was prompted last week after the ICC detected unusual activity on its network - a spokesman declined to comment on how serious the hack was, whether it has been fully resolved, or who might be behind it. With sensitive information at the ICC potentially including criminal evidence to names of witnesses, the Dutch Justice Ministry confirmed that the country's National Cyber Security Centre was assisting the ongoing investigation. In it's 2022 report, the Dutch Intelligence Agency stated that the ICC was of interest to Russia, with it investigating reported war crimes in Ukraine. The ICC had also recently made headlines for issuing Russian president Vladimir Putin with an arrest warrant. (Reuters)

Air Canada admits system breach, employee records exposed

21/9

On Wednesday Air Canada revealed that its internal systems had been breached. A spokesman for Canada's flagship airline stated that “An unauthorised group briefly obtained limited access to an internal Air Canada system related to limited personal information of some employees and certain records", adding that all of their systems remain fully functional, including flight operations and customer facing systems. No customer data was breached, however more than 36,000 Air Canada employees could have had their sensitive information compromised - the airline has not publicly disclosed what type of sensitive data was stolen. Air Canada also stated that it has now implemented more security controls to help protect against any future attacks. (Cyber News)

Data breach reveals people who put pineapple on pizza

21/9

190,000 customers at Pizza Hut Australia have had sensitive data, including names, delivery addresses, email addresses, phone numbers and order histories, accessed by an unauthorised third party. A statement from Pizza Hut said that the incident was first detected in early September - The company's CEO added that "we secured our systems, engaged forensic and cyber security specialists and initiated an ongoing investigation to help us understand what occurred, and identify the data that was impacted". This is not the first cyber incident that Pizza Hut has faced this year - its UK and US branches were impacted by Ransomware in January that caused severe disruption to operations. (The Register)

T-Mobile denies new data breach rumors, points to authorised retailer

22/9

After reports broke on Thursday night that a threat actor under the alias 'emo' had leaked an 89Gb database allegedly containing T-Mobile employees’ data to the BreachForums, T-Mobile has denied suffering a data breach, instead insisting that the leaked data belongs to an authorised retailer that had been breached earlier this year. The telecommunications giant stated that "There has not been a T-Mobile data breach. The data being referred to online is believed to be related to an independently owned authorised retailer from their incident earlier this year. T-Mobile employee data was not exposed". This breach has instead been linked with Amtel, an authorised retailer doing business as their Connectivity Source brand. The Amtel breach was disclosed in May 2023, with 17,835 current and former employees impacted; with the dates on both the stolen data and the breach disclosure aligning, it makes it highly likely that the BreachForums data is from the same attack. (Bleeping Computer)

Attempted cyber attacks occur every second, and as we can see from the recent headlines, constantly change in nature. It's critical that your organisation is as protected as possible from all forms of cyber crime, so Contact Celerity to find out how our layered approach to cyber security could protect your business!